Net Optics Smart Filtering Appliance User Manual download pdf (Page 47)

*** Condential - DO NOT Distribute ***

Director

Command Sub-Command Parameters Example and description

lter add ipv6=< y | n >

in_ports=<network_portlist>*

action=< redir | drop >

redir_ports=<monitor_portlist>

Notes:

The command may include

any number of <qual>, up

to the limit of Director's lter

resources (approximately

1,000 <qual> per chassis)

The action=< redir | drop >

parameter is required

If action=redir, then

redir_ports=<monitor_portlist>

parameter is required

lter add ipv6=n in_ports=n1.1-n1.3 ip_

src=10.1.1.1 action=drop

Parameters:

ipv6=y for IPv6 addressing; ipv6=n for IPv4 ad-

dressing (defaults to IPv4 if parameter is omitted)

<network_portlist> — trafc from the network

ports specied in this portlist is aggregated before

being sent to the lter

<qual> and <value> are lter qualiers and values

as listed in the table that follows this table

Specify redir or drop as the lter action —

if redir, packets matching all of the <qual> are

copied to all of the Monitor ports specied in the

portlist <monitor_portlist>

if drop, packets matching all of the <qual> are

dropped

Denes a lter, including the Network and Monitor

ports involved in the lter; lter is pending (inactive)

until activated by a lter commit or commit command

Note: If the lter command does not include any

<qual>, it denes aggregation, regeneration, and

matrix switching functions without ltering

clear lter clear

Clears all active lters

commit lter commit

Activates pending lters previously dened using

lter add and lter ins commands

del ipv6=< y | n >

id=<id>*

lter del id=3

Parameters:

ipv6=y for IPv6 addressing; ipv6=n for IPv4 ad-

dressing (defaults to IPv4 if parameter is omitted)

<id> is a decimal number from 1 to 999 that

identies which lter is to be deleted

Deletes a pending lter

discard lter discard

Clears all pending lters

ins ipv6=< y | n >

id=<id>*

in_ports=<network_portlist>

action=< redir | drop >

redir_ports=<monitor_portlist>

lter ins id=mylter-1 in_ports=n1.1-n1.3 ip_

src=10.1.1.1 action=drop

Parameters:

ipv6=y for IPv6 addressing; ipv6=n for IPv4 ad-

dressing (defaults to IPv4 if parameter is omitted)

<id> is a decimal number from 1 to 999 that

species the priority of this lter (the address for

the lter in the lter CAM)

The rest of the lters parameters are as dened

for the lter add command

Denes and prioritizes a lter

1 2 ... 42 43 44 45 46 47 48 49 50 51 52 ... 56 57

Comments to this Manuals

No comments

Net Optics Smart Filtering Appliance User Manual Page 47

Comments to this Manuals